What is GDPR?

GDPR (or General Data Protection Regulation), is a new set of laws coming in May that will protect the data privacy rights of all EU citizens. All companies who handle PII or Personally Identifiable Information from EU citizens will need to be transparent about how and where they use that data.

The General Data Protection Regulation, which came into force 25 May 2018, is a regulation that affects the EU 28 and three members of the European Economic Area (EEA): Norway, Liechtenstein and Iceland. It provides enhanced privacy rights for individuals who live in the European Union or the EEA, and it ensures that organizations who process their data — so essentially anyone who does stuff with personal data — is doing it with accountability and ensuring the upholding of the rights of those individuals. It doesn’t matter if you’re based in Europe or you’re based outside of Europe, if you’re selling goods and services over the Internet, you are as affected as anyone who’s trading within the EU.”